430 likes | 718 Views
Security Proposal for your network. SDI Vietnam www.sdivn.com. Index. Why we need Watch Guard? Network diagram Security Solution Logs and report. Companies Increasingly “Like” Social Media.
E N D
Security Proposalfor your network SDI Vietnam www.sdivn.com
Index Why we need Watch Guard? Network diagram Security Solution Logs and report
Companies Increasingly “Like” Social Media Robert Half Technology. “SOCIAL WORK? More Companies Permit Social Networking on the Job”. May 26, 2011. Retrieved from: http://rht.mediaroom.com/2011SocialMediaPolicies
Users and Applications are Out of Control! 50% of Facebook logins are specifically to play games1 50% of files downloaded and 80% of files uploaded online are via a P2P network2 76% of breaches target web apps3 1. Retrieved from: http://www.allfacebook.com/facebook-games-statistics-2010-09 2. Retrieved from http://www.freemusictodownload.eu/p2p-statistics.html 3. Sources: X-Force, Websense, Whitehat Security, Imperva, 7Scan
You Can’t Control What You Can’t See • Traditional port-based firewalls lack the ability to see, let alone control, many apps • Productivity Loss • Bandwidth-hungry apps slow networks • Data Loss / Attack Vector • Social networks breed a culture of trust • Rife with technical vulnerabilities
WatchGuard Solves Your Problem Restrict unproductive, insecure & bandwidth draining usage See the applications in use on your network Enable secure & productive business use of applications
Network Visibility is Essential • Rich reporting on App usage, users, categories, blocked applications, top clients, and more!
Intuitive Organization Simplifies Your Workflow • Find applications by category (e.g. Social Network) OR • Query search by application name (e.g. Facebook)
Security Your Way – Broad Control • Establish policy broadly across application category
Security Your Way – Granular Control • Exercise control by user, category, application, & application sub-function X X X
Why WatchGuard Wins with Application Control Watch Application Control Video http://www.watchguard.com/latest/appcontrol-demo.asp
XTM Defense-In-Depth In Action WatchGuard vs. Web 2.0 Security Issues
Cornerstone – The Application Proxy Packet Reassembly – since 1996 An Application Proxy checks Source IP, Destination IP, Port, Protocol If a matching rule (or service) is found: The proxy then performs deep inspection on the content of the packet, including application layer data. This is the key to finding threats that OTHER FIREWALLS MISS!
Managing XTM Solutions: Flexibility Choose from three user interface options: Administer your way Command Line Interface WatchGuard Systems Manager Interface Web Interface
Suite of tabbed tools deliver information needed to monitor and react to network status Managing XTM Solutions: Real-Time Visibility Take instant remediative action, such as adding a site to a blocked sites list Real-time monitoring lets you take instant action to protect your network. Monitor network traffic in real-time.
XTM Multi-Box Management Saves Time Simultaneously manage from 2 to 100’s of boxes. Implementing the WatchGuard solution was a breeze. The policy setting and system configuration is easy because it is all very logical and straightforward. Francis Lim, IT Manager, Eurokars Group Align security policies across an organization – or apply modifications between boxes
Securely Connecting Users: VPN • Create VPN by simple drag and drop • Connect any location with Internet access • Select from IPSec, SSL, PPTP • Choose your device: laptop, smartphone, tablet • Define flexible rules to restrict data access to authorized individuals only • Use client or clientless options I can’t remember the last time I had to call someone with a security problem. With WatchGuard, we are always connected. Lucas Goh, Head of IT Operations for Asia, Berg Propulsion
What is “Next-Generation”? “Firewalls need to evolve to be more proactive in blocking new threats, such as botnets and targeted attacks. Enterprises need to update their network firewall and intrusion prevention capabilities to protect business systems as attacks get more sophisticated.” (XTM = Next-Generation UTM) “XTM platforms will take security appliances beyond traditional boundaries by vastly expanding security features, networking capabilities and management flexibility.”
XTM Performance & Value = Market Leadership Source: 2011 Infonetics, 3Q11 Network Security Appliance and Software Worldwide and Regional Market Share.
Industry-Leading Value “The company is strong, the products able, and the pricing can’t be beat.” Source: Info-Tech Research Group. Vendor Landscape: Unified Threat Management. August 2011.
Why WatchGuard Wins Watch Video Comparisons http://www.watchguard.com/latest/us-vs-them.asp
Moving Security Forward with Watchguard XTM • “Best-in-class” security for comprehensive protection • Recognized security “Trend Setter”, industry “Champion”, and “Leader” • 65 reports included at no extra cost • Real-time monitoring • Intuitive set-up wizards • Multi-WAN support • Market-leading value
Why we need Watch guard Manage users to access internet. Filtering content and url of the website. Filtering by keyword Filtering and inspect HTTPS. Web blocker has over 54 categories for IT manager to manage the internet access. Report and logs all content accessed by users. Secure e-mail and web access. Can be integrated to the Domain controller to apply the policy to manage users. Watchguard is not only a simple firewall but also it is a good tools for IT Manager to manage their network.
Network and user management. E-mail security
Watchguard XTM features Application control
Watchguard – integatedsolutions. Protects networks by integrating best-in-class security technologies that enable businesses to manage risks, empower people and improve efficiencies.
WatchGuard: Industry Leader Gartner Named “Leader” in Magic Quadrant Multifunction Firewalls IDC “WatchGuard, one of the first security appliance vendors, will remain a leader in this market going forward.” Frost & Sullivan “WatchGuard is on its track of becoming a major participant in the enterprise-UTM market.” “Measurements have indicated that WatchGuard has chipped away the market share formally held by Fortinet, Cisco, and Juniper.”
Defense-in-Depth — XTM WatchGuard Extensible Threat Management Content Security VPN Stateful Firewall Layered Security SSL IPSEC Deep Packet Inspection Reputation Enabled Defense Gateway Antivirus Intrusion Prevention Spam Protection URL Filtering Application Control Centralized Management Rich Reporting Real-Time Monitoring
WatchGuard XTM Series: Unified Threat Management • Sized for small businesses to the enterprise • All-in-one network security • Firewall Integrated with Advance networking features • SSL and IPSec VPN (MUVPN/BOVPN) • Reputation Enabled Defense (Cloud Security Services) • WebBlocker (including full HTTPS inspection) • SpamBlocker • Gateway Anti-Virus/Intrusion Prevention Services • Application Control (More than 1800 signatures!) • Three management interfaces–console, web UI, CLI • Reporting and real-time monitoring–at no extra cost • Model-upgradeable within each series
WatchGuard XTM 5 Series • Recommended for main offices/ headquarters with up to 1,500 users • Performance driven security for growing mid-size businesses • Up to 2.3 Gbps firewall throughput • Full HTTPS inspection and VoIP support. • Model-upgradeable
Logs and reports Watchguarddoes not keep the logs and reports in the same box. Watchguardrecommends customer to use another computer running Win XP to install logs and report management software to run as Report and Logs server. This idea is really good for customer to manage and backup the logs and report information. Log information could be stored for many years.
Thank You! Gain Visibility. Gain Insight. Gain Control. WatchGuard Application Control